SUSE-SU-2019:1123-1 -- SLES yubico-piv-tool, libykcs11-1, libykcs11-devel, libykpiv-devel, libykpiv1ID: oval:org.secpod.oval:def:89050901 | Date: (C)2023-10-16 (M)2023-10-15 |
Class: PATCH | Family: unix |
This update for yubico-piv-tool fixes the following issues: Security issues fixed: - Fixed an buffer overflow and an out of bounds memory read in ykpiv_transfer_data, which could be triggered by a malicious token. - Fixed an buffer overflow and an out of bounds memory read in _ykpiv_fetch_object, which could be triggered by a malicious token
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Desktop 15 |
Product: |
yubico-piv-tool |
libykcs11-1 |
libykcs11-devel |
libykpiv-devel |
libykpiv1 |